Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-03-2017
Exécuté par Michèle (administrateur) sur DESKTOP-RBUD3I2 (07-03-2017 15:48:05)
Exécuté depuis C:\Users\Michèle\Desktop
Profils chargés: Michèle (Profils disponibles: Michèle)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 7640 series\Bin\ScanToPCActivationApp.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11610.1001.25.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-03] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\...\Run: [HP ENVY 7640 series (NET)] => C:\Program Files\HP\HP ENVY 7640 series\Bin\ScanToPCActivationApp.exe [3483656 2014-08-22] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\...\Run: [6W4PIJK3CQ] => "C:\Program Files (x86)\DiskP\G50PR.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2016-07-26]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{4ebfe5e9-b6eb-447c-a366-3e61d9ac4176}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{74642ee3-8dab-4201-be21-2f7637214142}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{bbe44f50-74e6-11e6-a431-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d3d020c8-5e5a-426b-90a3-870583c805c8}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d8d41239-8caf-477f-a6bb-666141997659}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d9db9d25-ccfc-4127-b63a-2bde62e8e1a8}: [NameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-03-06] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-03-06] (Bitdefender)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: ocp6eqqh.default
FF ProfilePath: C:\Users\Michèle\AppData\Roaming\Mozilla\Firefox\Profiles\ocp6eqqh.default [2017-03-07]
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-03-06]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2017-01-19] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-07-29] (Windows (R) Win 7 DDK provider)
R3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe [301536 2016-11-30] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe [480224 2016-11-30] (Intel Corporation)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155376 2015-10-03] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe [341984 2016-11-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-10-03] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568816 2015-10-03] (NVIDIA Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1230824 2017-02-22] (Bitdefender)
R2 SAService; C:\Windows\system32\SAsrv.exe [427224 2015-04-17] (Conexant Systems, Inc.)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-08-20] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-03-06] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1532736 2017-03-06] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-09-20] (BitDefender)
R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55816 2015-08-17] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77408 2017-02-24] ()
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igdkmd64.sys [11039712 2016-11-30] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-03-07] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-03-07] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-03-07] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251840 2017-03-07] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92088 2017-03-07] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-10-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50472 2015-08-09] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-07 15:48 - 2017-03-07 15:48 - 00018344 _____ C:\Users\Michèle\Desktop\FRST.txt
2017-03-07 14:14 - 2017-03-07 14:14 - 00001614 _____ C:\Users\Michèle\Desktop\ZHPCleaner.txt
2017-03-07 11:35 - 2017-03-07 11:35 - 00000300 _____ C:\Users\Michèle\Desktop\Eset.txt
2017-03-07 10:23 - 2017-03-07 10:23 - 00000000 ____D C:\Program Files (x86)\ESET
2017-03-07 10:20 - 2017-03-07 10:20 - 02870984 _____ (ESET) C:\Users\Michèle\Desktop\esetsmartinstaller_fra.exe
2017-03-07 10:18 - 2017-03-07 10:18 - 00000000 ____D C:\Users\Michèle\AppData\Local\Mozilla
2017-03-06 22:55 - 2017-03-06 22:55 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-03-06 22:55 - 2017-03-06 22:55 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-06 22:54 - 2017-03-06 22:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-06 22:47 - 2017-03-06 22:47 - 01622528 _____ C:\Users\Michèle\Desktop\ResetBrowser.exe
2017-03-06 22:35 - 2017-03-06 22:39 - 00008189 _____ C:\Users\Michèle\Desktop\Fixlog.txt
2017-03-06 21:17 - 2017-03-07 14:42 - 00092088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00251840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-03-06 21:17 - 2017-03-07 11:36 - 00002095 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-06 21:17 - 2017-02-24 06:23 - 00077408 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-03-06 21:15 - 2017-03-06 21:16 - 57131432 _____ (Malwarebytes ) C:\Users\Michèle\Desktop\mb3-setup-consumer-3.0.6.1469-1075.exe
2017-03-06 21:06 - 2017-03-07 14:11 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\ZHP
2017-03-06 21:06 - 2017-03-07 13:58 - 00000879 _____ C:\Users\Michèle\Desktop\ZHPCleaner.lnk
2017-03-06 21:05 - 2017-03-06 21:05 - 02748928 _____ C:\Users\Michèle\Downloads\ZHPCleaner.exe
2017-03-06 21:00 - 2017-03-06 23:00 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-06 21:00 - 2017-03-06 23:00 - 00003462 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-05 23:21 - 2017-03-06 22:18 - 00001059 _____ C:\Users\Michèle\Desktop\AdsFix_Donate.lnk
2017-03-05 23:21 - 2017-03-05 23:44 - 00017832 _____ C:\AdsFix.txt
2017-03-05 23:18 - 2017-03-05 23:43 - 00000000 ____D C:\AdsFix
2017-03-05 23:17 - 2017-03-05 23:17 - 06485416 _____ (SosVirus) C:\Users\Michèle\Downloads\adsfix_4_01.03.17.1.exe
2017-03-05 23:17 - 2017-03-05 23:17 - 06485416 _____ (SosVirus) C:\Users\Michèle\Desktop\AdsFix.exe
2017-03-05 22:45 - 2017-03-05 22:45 - 00380928 _____ C:\Users\Michèle\Desktop\q17p3f2r.exe
2017-03-05 22:37 - 2017-03-05 22:37 - 02423808 _____ (Farbar) C:\Users\Michèle\Desktop\FRST64.exe
2017-03-05 22:29 - 2017-03-05 22:30 - 00032463 _____ C:\Users\Michèle\Downloads\Addition.txt
2017-03-05 22:28 - 2017-03-07 15:48 - 00000000 ____D C:\FRST
2017-03-05 22:28 - 2017-03-05 22:30 - 00034716 _____ C:\Users\Michèle\Downloads\FRST.txt
2017-03-05 22:28 - 2017-03-05 22:28 - 02423808 _____ (Farbar) C:\Users\Michèle\Downloads\FRST64.exe
2017-03-03 09:15 - 2017-03-03 09:17 - 00000000 ____D C:\AdwCleaner
2017-03-03 09:15 - 2017-03-03 09:15 - 04031440 _____ C:\Users\Michèle\Downloads\adwcleaner_6.044.exe
2017-03-02 22:45 - 2017-03-06 21:02 - 00305120 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2017-03-02 22:29 - 2017-03-06 23:11 - 00006872 _____ C:\bdlog.txt
2017-03-02 22:28 - 2017-03-02 22:45 - 00003406 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2017-03-02 22:28 - 2017-03-02 22:28 - 00392894 _____ C:\ProgramData\cl.1488489292.bdinstall.bin
2017-03-02 22:22 - 2017-03-02 22:22 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2017-03-02 22:21 - 2017-03-02 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2017
2017-03-02 22:21 - 2017-03-02 22:21 - 00002301 _____ C:\Users\Public\Desktop\Bitdefender 2017.lnk
2017-03-02 22:21 - 2017-03-02 22:21 - 00000000 ____D C:\ProgramData\BDLogging
2017-03-02 22:20 - 2017-03-02 22:29 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Bitdefender
2017-03-02 22:20 - 2016-09-20 04:17 - 01605376 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2017-03-02 22:20 - 2016-09-20 04:16 - 00878072 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2017-03-02 22:20 - 2016-03-14 22:04 - 00023672 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2017-03-02 22:20 - 2015-12-04 19:27 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2017-03-02 22:20 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2017-03-02 22:16 - 2017-03-02 22:45 - 00000000 ____D C:\ProgramData\Bitdefender
2017-03-02 22:16 - 2017-03-02 22:16 - 00000000 ____D C:\Program Files\Bitdefender
2017-03-02 22:16 - 2016-10-29 08:54 - 00182944 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2017-03-02 22:16 - 2016-06-22 14:40 - 00520032 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2017-03-02 22:14 - 2017-03-02 22:16 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2017-03-02 22:14 - 2017-03-02 22:14 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\QuickScan
2017-03-02 22:09 - 2017-03-02 22:09 - 00003798 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-03-02 22:07 - 2017-03-07 15:04 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-03-02 22:07 - 2017-03-02 22:07 - 00047792 _____ C:\ProgramData\agent.1488488863.bdinstall.bin
2017-03-02 22:07 - 2017-03-02 22:07 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2017-03-02 22:06 - 2017-03-02 22:06 - 10740616 _____ C:\Users\Michèle\Downloads\bitdefender_antivirus.exe
2017-03-02 20:09 - 2017-03-02 22:12 - 00000000 ____D C:\Users\Michèle\AppData\Local\ESET
2017-03-02 20:09 - 2017-03-02 20:09 - 06751360 _____ (ESET spol. s r.o.) C:\Users\Michèle\Downloads\esetonlinescanner_enu.exe
2017-03-02 20:07 - 2017-03-07 13:58 - 00000000 ____D C:\Users\Michèle\AppData\LocalLow\Mozilla
2017-03-02 19:40 - 2017-03-02 19:40 - 00245616 _____ C:\Users\Michèle\Downloads\Firefox Setup Stub 51.0.1.exe
2017-03-02 19:39 - 2017-03-02 19:39 - 00000000 ___HD C:\ProgramData\CanonBJ
2017-03-02 19:39 - 2012-03-26 05:00 - 00389120 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMB8.DLL
2017-03-01 14:09 - 2017-03-06 21:12 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Kyubey
2017-02-28 23:30 - 2017-02-28 23:30 - 01129376 _____ (Google Inc.) C:\Users\Michèle\Downloads\ChromeSetup.exe
2017-02-28 21:44 - 2017-02-28 22:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\Ibcbsoft
2017-02-28 21:44 - 2017-02-28 21:57 - 00000000 ____D C:\Users\Michèle\AppData\Local\Egdktion
2017-02-28 21:42 - 2017-02-28 21:42 - 00000000 ____D C:\WINDOWS\system32\sstmp
2017-02-28 21:39 - 2017-02-28 21:39 - 00000037 _____ C:\WINDOWS\wininit.ini
2017-02-28 21:37 - 2017-03-07 10:18 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Mozilla
2017-02-28 21:37 - 2017-02-28 22:23 - 00000000 ____D C:\ProgramData\Voyasollam
2017-02-28 21:37 - 2017-02-28 22:23 - 00000000 ____D C:\ProgramData\{8FA18975-380A-3EDE-9A24-020519ACD2BD}
2017-02-28 21:35 - 2017-02-28 21:35 - 00000000 ____D C:\Users\Mich│le
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Program Files (x86)\WinRAR
2017-02-28 21:32 - 2017-02-28 21:32 - 02069664 _____ C:\Users\Michèle\Downloads\wrar540fr.exe
2017-02-28 20:48 - 2017-02-28 20:48 - 09509032 _____ (TeamViewer GmbH) C:\Users\Michèle\Downloads\TeamViewer_Setup.exe
2017-02-28 17:51 - 2017-02-28 17:51 - 00171203 _____ C:\Users\Michèle\Downloads\comment-creer-son-logo
2017-02-19 11:10 - 2017-02-19 11:11 - 01664591 _____ C:\Users\Michèle\Downloads\pf-setup (1).exe
2017-02-19 11:10 - 2017-02-19 11:10 - 01664591 _____ C:\Users\Michèle\Downloads\pf-setup.exe
2017-02-16 15:23 - 2017-02-16 15:22 - 00528209 _____ C:\Users\Michèle\Documents\Impots Releve Montant 2016 complémentaire.pdf
2017-02-16 15:22 - 2017-02-16 15:22 - 00528209 _____ C:\Users\Michèle\Downloads\ReleveMontantImpots2016.pdf
2017-02-13 09:09 - 2017-02-13 09:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-02-13 09:09 - 2017-02-13 09:09 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-09 10:15 - 2017-02-09 10:15 - 00126913 _____ C:\Users\Michèle\Downloads\D_livrance carte _ accus_ de r_ception d_livrance carte - 50430500006(20170207)_1115533040.pdf
2017-02-09 10:11 - 2017-02-09 10:11 - 00138913 _____ C:\Users\Michèle\Downloads\Retrait client_1112951951.pdf
2017-02-09 10:10 - 2017-02-09 10:10 - 00123526 _____ C:\Users\Michèle\Downloads\Conditions g_n_rales SEA_1112653131.pdf
2017-02-09 09:56 - 2017-02-09 09:56 - 00038628 _____ C:\Users\Michèle\Downloads\Questionnaire MIF(20151125)- R_f_rence _ 25_11_2015_1071237476.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-07 15:47 - 2016-09-07 10:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-07 12:00 - 2016-09-07 11:00 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-03-07 12:00 - 2016-09-07 11:00 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-03-07 11:38 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-07 10:14 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-07 10:13 - 2016-08-20 18:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\ASUS GIFTBOX
2017-03-07 10:06 - 2016-08-20 18:25 - 00000165 _____ C:\Users\Michèle\AppData\Roaming\sp_data.sys
2017-03-07 10:06 - 2016-08-20 18:22 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-03-07 10:04 - 2016-09-07 11:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-07 10:04 - 2016-08-20 18:25 - 00000000 __SHD C:\Users\Michèle\IntelGraphicsProfiles
2017-03-06 23:11 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-03-06 22:55 - 2016-08-20 18:53 - 00000000 ____D C:\Program Files (x86)\Google
2017-03-06 21:01 - 2016-08-20 18:53 - 00000000 ____D C:\Users\Michèle\AppData\Local\Google
2017-03-05 23:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Web
2017-03-05 22:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-05 22:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-02 22:14 - 2016-12-15 17:44 - 00003294 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-02 22:14 - 2016-08-20 18:28 - 00002415 _____ C:\Users\Michèle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-02 22:14 - 2016-08-20 18:28 - 00000000 ___RD C:\Users\Michèle\OneDrive
2017-03-02 22:12 - 2016-08-20 18:46 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\AVAST Software
2017-03-02 22:12 - 2016-07-26 17:38 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-02 22:12 - 2016-07-26 17:38 - 00000000 ____D C:\Program Files\AVAST Software
2017-03-02 20:37 - 2016-08-20 20:18 - 00000000 ____D C:\Users\Michèle\Downloads\Microsoft Office Professional Plus 2013 VL Edition x86 x64 FR
2017-03-02 19:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-03-02 15:41 - 2016-09-19 16:00 - 00000000 ____D C:\Users\Michèle\Documents\Dossiers Michèle
2017-03-02 09:07 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-28 23:19 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-02-27 17:42 - 2016-09-07 10:49 - 00000000 ____D C:\Users\Michèle
2017-02-27 08:05 - 2016-08-20 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-02-27 08:05 - 2015-10-30 08:24 - 00000199 _____ C:\WINDOWS\win.ini
2017-02-25 20:22 - 2016-08-20 18:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\Packages
2017-02-23 17:08 - 2016-08-21 14:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 17:07 - 2016-08-21 14:10 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 10:24 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-22 11:19 - 2016-09-10 16:06 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-18 19:12 - 2016-09-07 10:56 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-02-16 19:12 - 2016-10-16 09:52 - 00000000 ____D C:\Users\Michèle\Documents\Conférence Brasserie
2017-02-13 09:09 - 2016-07-16 23:40 - 00711848 _____ C:\WINDOWS\system32\perfh00C.dat
2017-02-13 09:09 - 2016-07-16 23:40 - 00137946 _____ C:\WINDOWS\system32\perfc00C.dat
2017-02-13 09:09 - 2016-03-24 12:50 - 01838882 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-09 17:11 - 2016-09-29 16:05 - 00000000 ____D C:\Users\Michèle\Documents\Musée de Wattrelos
2017-02-08 08:29 - 2016-09-19 15:44 - 00000000 ____D C:\Users\Michèle\Documents\Travaux Maison
2017-02-06 20:48 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-06 20:48 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Fichiers à la racine de certains dossiers =======
2011-06-17 14:00 - 2011-06-17 14:00 - 0007444 _____ () C:\Users\Michèle\AppData\Roaming\ca.txt
2016-05-19 10:53 - 2016-05-19 10:53 - 0010395 _____ () C:\Users\Michèle\AppData\Roaming\co.txt
2011-06-17 14:00 - 2011-06-17 14:00 - 0018258 _____ () C:\Users\Michèle\AppData\Roaming\gu.txt
2015-11-20 17:06 - 2015-11-20 17:06 - 0009170 _____ () C:\Users\Michèle\AppData\Roaming\nl.txt
2015-02-12 14:13 - 2015-02-12 14:13 - 0009372 _____ () C:\Users\Michèle\AppData\Roaming\sk.txt
2016-08-20 18:25 - 2017-03-07 10:06 - 0000165 _____ () C:\Users\Michèle\AppData\Roaming\sp_data.sys
2011-06-17 14:00 - 2011-06-17 14:00 - 0011386 _____ () C:\Users\Michèle\AppData\Roaming\ug.txt
2017-03-02 22:07 - 2017-03-02 22:07 - 0047792 _____ () C:\ProgramData\agent.1488488863.bdinstall.bin
2017-03-02 22:28 - 2017-03-02 22:28 - 0392894 _____ () C:\ProgramData\cl.1488489292.bdinstall.bin
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-18 19:08
==================== Fin de FRST.txt ============================
Exécuté par Michèle (administrateur) sur DESKTOP-RBUD3I2 (07-03-2017 15:48:05)
Exécuté depuis C:\Users\Michèle\Desktop
Profils chargés: Michèle (Profils disponibles: Michèle)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 7640 series\Bin\ScanToPCActivationApp.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11610.1001.25.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-03] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\...\Run: [HP ENVY 7640 series (NET)] => C:\Program Files\HP\HP ENVY 7640 series\Bin\ScanToPCActivationApp.exe [3483656 2014-08-22] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\...\Run: [6W4PIJK3CQ] => "C:\Program Files (x86)\DiskP\G50PR.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2016-07-26]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{4ebfe5e9-b6eb-447c-a366-3e61d9ac4176}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{74642ee3-8dab-4201-be21-2f7637214142}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{bbe44f50-74e6-11e6-a431-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d3d020c8-5e5a-426b-90a3-870583c805c8}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d8d41239-8caf-477f-a6bb-666141997659}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{d9db9d25-ccfc-4127-b63a-2bde62e8e1a8}: [NameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-2981518762-370071608-2987705941-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-03-06] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-03-06] (Bitdefender)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: ocp6eqqh.default
FF ProfilePath: C:\Users\Michèle\AppData\Roaming\Mozilla\Firefox\Profiles\ocp6eqqh.default [2017-03-07]
FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-03-06]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2017-01-19] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-07-29] (Windows (R) Win 7 DDK provider)
R3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe [301536 2016-11-30] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe [480224 2016-11-30] (Intel Corporation)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155376 2015-10-03] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe [341984 2016-11-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-10-03] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568816 2015-10-03] (NVIDIA Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1230824 2017-02-22] (Bitdefender)
R2 SAService; C:\Windows\system32\SAsrv.exe [427224 2015-04-17] (Conexant Systems, Inc.)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-08-20] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-03-06] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1532736 2017-03-06] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUS Corporation)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-09-20] (BitDefender)
R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-09-20] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55816 2015-08-17] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77408 2017-02-24] ()
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igdkmd64.sys [11039712 2016-11-30] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-03-07] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-03-07] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-03-07] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251840 2017-03-07] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92088 2017-03-07] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-10-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50472 2015-08-09] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-07 15:48 - 2017-03-07 15:48 - 00018344 _____ C:\Users\Michèle\Desktop\FRST.txt
2017-03-07 14:14 - 2017-03-07 14:14 - 00001614 _____ C:\Users\Michèle\Desktop\ZHPCleaner.txt
2017-03-07 11:35 - 2017-03-07 11:35 - 00000300 _____ C:\Users\Michèle\Desktop\Eset.txt
2017-03-07 10:23 - 2017-03-07 10:23 - 00000000 ____D C:\Program Files (x86)\ESET
2017-03-07 10:20 - 2017-03-07 10:20 - 02870984 _____ (ESET) C:\Users\Michèle\Desktop\esetsmartinstaller_fra.exe
2017-03-07 10:18 - 2017-03-07 10:18 - 00000000 ____D C:\Users\Michèle\AppData\Local\Mozilla
2017-03-06 22:55 - 2017-03-06 22:55 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-03-06 22:55 - 2017-03-06 22:55 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00001218 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-06 22:54 - 2017-03-06 22:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-06 22:54 - 2017-03-06 22:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-06 22:47 - 2017-03-06 22:47 - 01622528 _____ C:\Users\Michèle\Desktop\ResetBrowser.exe
2017-03-06 22:35 - 2017-03-06 22:39 - 00008189 _____ C:\Users\Michèle\Desktop\Fixlog.txt
2017-03-06 21:17 - 2017-03-07 14:42 - 00092088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00251840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-03-06 21:17 - 2017-03-07 11:38 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-03-06 21:17 - 2017-03-07 11:36 - 00002095 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-06 21:17 - 2017-03-06 21:17 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-06 21:17 - 2017-02-24 06:23 - 00077408 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-03-06 21:15 - 2017-03-06 21:16 - 57131432 _____ (Malwarebytes ) C:\Users\Michèle\Desktop\mb3-setup-consumer-3.0.6.1469-1075.exe
2017-03-06 21:06 - 2017-03-07 14:11 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\ZHP
2017-03-06 21:06 - 2017-03-07 13:58 - 00000879 _____ C:\Users\Michèle\Desktop\ZHPCleaner.lnk
2017-03-06 21:05 - 2017-03-06 21:05 - 02748928 _____ C:\Users\Michèle\Downloads\ZHPCleaner.exe
2017-03-06 21:00 - 2017-03-06 23:00 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-06 21:00 - 2017-03-06 23:00 - 00003462 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-05 23:21 - 2017-03-06 22:18 - 00001059 _____ C:\Users\Michèle\Desktop\AdsFix_Donate.lnk
2017-03-05 23:21 - 2017-03-05 23:44 - 00017832 _____ C:\AdsFix.txt
2017-03-05 23:18 - 2017-03-05 23:43 - 00000000 ____D C:\AdsFix
2017-03-05 23:17 - 2017-03-05 23:17 - 06485416 _____ (SosVirus) C:\Users\Michèle\Downloads\adsfix_4_01.03.17.1.exe
2017-03-05 23:17 - 2017-03-05 23:17 - 06485416 _____ (SosVirus) C:\Users\Michèle\Desktop\AdsFix.exe
2017-03-05 22:45 - 2017-03-05 22:45 - 00380928 _____ C:\Users\Michèle\Desktop\q17p3f2r.exe
2017-03-05 22:37 - 2017-03-05 22:37 - 02423808 _____ (Farbar) C:\Users\Michèle\Desktop\FRST64.exe
2017-03-05 22:29 - 2017-03-05 22:30 - 00032463 _____ C:\Users\Michèle\Downloads\Addition.txt
2017-03-05 22:28 - 2017-03-07 15:48 - 00000000 ____D C:\FRST
2017-03-05 22:28 - 2017-03-05 22:30 - 00034716 _____ C:\Users\Michèle\Downloads\FRST.txt
2017-03-05 22:28 - 2017-03-05 22:28 - 02423808 _____ (Farbar) C:\Users\Michèle\Downloads\FRST64.exe
2017-03-03 09:15 - 2017-03-03 09:17 - 00000000 ____D C:\AdwCleaner
2017-03-03 09:15 - 2017-03-03 09:15 - 04031440 _____ C:\Users\Michèle\Downloads\adwcleaner_6.044.exe
2017-03-02 22:45 - 2017-03-06 21:02 - 00305120 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2017-03-02 22:29 - 2017-03-06 23:11 - 00006872 _____ C:\bdlog.txt
2017-03-02 22:28 - 2017-03-02 22:45 - 00003406 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2017-03-02 22:28 - 2017-03-02 22:28 - 00392894 _____ C:\ProgramData\cl.1488489292.bdinstall.bin
2017-03-02 22:22 - 2017-03-02 22:22 - 00000385 _____ C:\WINDOWS\system32\user_gensett.xml
2017-03-02 22:21 - 2017-03-02 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2017
2017-03-02 22:21 - 2017-03-02 22:21 - 00002301 _____ C:\Users\Public\Desktop\Bitdefender 2017.lnk
2017-03-02 22:21 - 2017-03-02 22:21 - 00000000 ____D C:\ProgramData\BDLogging
2017-03-02 22:20 - 2017-03-02 22:29 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Bitdefender
2017-03-02 22:20 - 2016-09-20 04:17 - 01605376 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2017-03-02 22:20 - 2016-09-20 04:16 - 00878072 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2017-03-02 22:20 - 2016-03-14 22:04 - 00023672 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2017-03-02 22:20 - 2015-12-04 19:27 - 00087912 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2017-03-02 22:20 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2017-03-02 22:16 - 2017-03-02 22:45 - 00000000 ____D C:\ProgramData\Bitdefender
2017-03-02 22:16 - 2017-03-02 22:16 - 00000000 ____D C:\Program Files\Bitdefender
2017-03-02 22:16 - 2016-10-29 08:54 - 00182944 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2017-03-02 22:16 - 2016-06-22 14:40 - 00520032 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2017-03-02 22:14 - 2017-03-02 22:16 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2017-03-02 22:14 - 2017-03-02 22:14 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\QuickScan
2017-03-02 22:09 - 2017-03-02 22:09 - 00003798 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-03-02 22:07 - 2017-03-07 15:04 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-03-02 22:07 - 2017-03-02 22:07 - 00047792 _____ C:\ProgramData\agent.1488488863.bdinstall.bin
2017-03-02 22:07 - 2017-03-02 22:07 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2017-03-02 22:06 - 2017-03-02 22:06 - 10740616 _____ C:\Users\Michèle\Downloads\bitdefender_antivirus.exe
2017-03-02 20:09 - 2017-03-02 22:12 - 00000000 ____D C:\Users\Michèle\AppData\Local\ESET
2017-03-02 20:09 - 2017-03-02 20:09 - 06751360 _____ (ESET spol. s r.o.) C:\Users\Michèle\Downloads\esetonlinescanner_enu.exe
2017-03-02 20:07 - 2017-03-07 13:58 - 00000000 ____D C:\Users\Michèle\AppData\LocalLow\Mozilla
2017-03-02 19:40 - 2017-03-02 19:40 - 00245616 _____ C:\Users\Michèle\Downloads\Firefox Setup Stub 51.0.1.exe
2017-03-02 19:39 - 2017-03-02 19:39 - 00000000 ___HD C:\ProgramData\CanonBJ
2017-03-02 19:39 - 2012-03-26 05:00 - 00389120 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMB8.DLL
2017-03-01 14:09 - 2017-03-06 21:12 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Kyubey
2017-02-28 23:30 - 2017-02-28 23:30 - 01129376 _____ (Google Inc.) C:\Users\Michèle\Downloads\ChromeSetup.exe
2017-02-28 21:44 - 2017-02-28 22:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\Ibcbsoft
2017-02-28 21:44 - 2017-02-28 21:57 - 00000000 ____D C:\Users\Michèle\AppData\Local\Egdktion
2017-02-28 21:42 - 2017-02-28 21:42 - 00000000 ____D C:\WINDOWS\system32\sstmp
2017-02-28 21:39 - 2017-02-28 21:39 - 00000037 _____ C:\WINDOWS\wininit.ini
2017-02-28 21:37 - 2017-03-07 10:18 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Mozilla
2017-02-28 21:37 - 2017-02-28 22:23 - 00000000 ____D C:\ProgramData\Voyasollam
2017-02-28 21:37 - 2017-02-28 22:23 - 00000000 ____D C:\ProgramData\{8FA18975-380A-3EDE-9A24-020519ACD2BD}
2017-02-28 21:35 - 2017-02-28 21:35 - 00000000 ____D C:\Users\Mich│le
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 21:33 - 2017-02-28 21:33 - 00000000 ____D C:\Program Files (x86)\WinRAR
2017-02-28 21:32 - 2017-02-28 21:32 - 02069664 _____ C:\Users\Michèle\Downloads\wrar540fr.exe
2017-02-28 20:48 - 2017-02-28 20:48 - 09509032 _____ (TeamViewer GmbH) C:\Users\Michèle\Downloads\TeamViewer_Setup.exe
2017-02-28 17:51 - 2017-02-28 17:51 - 00171203 _____ C:\Users\Michèle\Downloads\comment-creer-son-logo
2017-02-19 11:10 - 2017-02-19 11:11 - 01664591 _____ C:\Users\Michèle\Downloads\pf-setup (1).exe
2017-02-19 11:10 - 2017-02-19 11:10 - 01664591 _____ C:\Users\Michèle\Downloads\pf-setup.exe
2017-02-16 15:23 - 2017-02-16 15:22 - 00528209 _____ C:\Users\Michèle\Documents\Impots Releve Montant 2016 complémentaire.pdf
2017-02-16 15:22 - 2017-02-16 15:22 - 00528209 _____ C:\Users\Michèle\Downloads\ReleveMontantImpots2016.pdf
2017-02-13 09:09 - 2017-02-13 09:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-02-13 09:09 - 2017-02-13 09:09 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-09 10:15 - 2017-02-09 10:15 - 00126913 _____ C:\Users\Michèle\Downloads\D_livrance carte _ accus_ de r_ception d_livrance carte - 50430500006(20170207)_1115533040.pdf
2017-02-09 10:11 - 2017-02-09 10:11 - 00138913 _____ C:\Users\Michèle\Downloads\Retrait client_1112951951.pdf
2017-02-09 10:10 - 2017-02-09 10:10 - 00123526 _____ C:\Users\Michèle\Downloads\Conditions g_n_rales SEA_1112653131.pdf
2017-02-09 09:56 - 2017-02-09 09:56 - 00038628 _____ C:\Users\Michèle\Downloads\Questionnaire MIF(20151125)- R_f_rence _ 25_11_2015_1071237476.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-07 15:47 - 2016-09-07 10:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-07 12:00 - 2016-09-07 11:00 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-03-07 12:00 - 2016-09-07 11:00 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-03-07 11:38 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-07 10:14 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-07 10:13 - 2016-08-20 18:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\ASUS GIFTBOX
2017-03-07 10:06 - 2016-08-20 18:25 - 00000165 _____ C:\Users\Michèle\AppData\Roaming\sp_data.sys
2017-03-07 10:06 - 2016-08-20 18:22 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-03-07 10:04 - 2016-09-07 11:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-07 10:04 - 2016-08-20 18:25 - 00000000 __SHD C:\Users\Michèle\IntelGraphicsProfiles
2017-03-06 23:11 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-03-06 22:55 - 2016-08-20 18:53 - 00000000 ____D C:\Program Files (x86)\Google
2017-03-06 21:01 - 2016-08-20 18:53 - 00000000 ____D C:\Users\Michèle\AppData\Local\Google
2017-03-05 23:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Web
2017-03-05 22:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-05 22:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-02 22:14 - 2016-12-15 17:44 - 00003294 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-02 22:14 - 2016-08-20 18:28 - 00002415 _____ C:\Users\Michèle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-02 22:14 - 2016-08-20 18:28 - 00000000 ___RD C:\Users\Michèle\OneDrive
2017-03-02 22:12 - 2016-08-20 18:46 - 00000000 ____D C:\Users\Michèle\AppData\Roaming\AVAST Software
2017-03-02 22:12 - 2016-07-26 17:38 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-02 22:12 - 2016-07-26 17:38 - 00000000 ____D C:\Program Files\AVAST Software
2017-03-02 20:37 - 2016-08-20 20:18 - 00000000 ____D C:\Users\Michèle\Downloads\Microsoft Office Professional Plus 2013 VL Edition x86 x64 FR
2017-03-02 19:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-03-02 15:41 - 2016-09-19 16:00 - 00000000 ____D C:\Users\Michèle\Documents\Dossiers Michèle
2017-03-02 09:07 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-28 23:19 - 2016-03-24 13:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-02-27 17:42 - 2016-09-07 10:49 - 00000000 ____D C:\Users\Michèle
2017-02-27 08:05 - 2016-08-20 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-02-27 08:05 - 2015-10-30 08:24 - 00000199 _____ C:\WINDOWS\win.ini
2017-02-25 20:22 - 2016-08-20 18:25 - 00000000 ____D C:\Users\Michèle\AppData\Local\Packages
2017-02-23 17:08 - 2016-08-21 14:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 17:07 - 2016-08-21 14:10 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 10:24 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-22 11:19 - 2016-09-10 16:06 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-18 19:12 - 2016-09-07 10:56 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-02-16 19:12 - 2016-10-16 09:52 - 00000000 ____D C:\Users\Michèle\Documents\Conférence Brasserie
2017-02-13 09:09 - 2016-07-16 23:40 - 00711848 _____ C:\WINDOWS\system32\perfh00C.dat
2017-02-13 09:09 - 2016-07-16 23:40 - 00137946 _____ C:\WINDOWS\system32\perfc00C.dat
2017-02-13 09:09 - 2016-03-24 12:50 - 01838882 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-09 17:11 - 2016-09-29 16:05 - 00000000 ____D C:\Users\Michèle\Documents\Musée de Wattrelos
2017-02-08 08:29 - 2016-09-19 15:44 - 00000000 ____D C:\Users\Michèle\Documents\Travaux Maison
2017-02-06 20:48 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-06 20:48 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Fichiers à la racine de certains dossiers =======
2011-06-17 14:00 - 2011-06-17 14:00 - 0007444 _____ () C:\Users\Michèle\AppData\Roaming\ca.txt
2016-05-19 10:53 - 2016-05-19 10:53 - 0010395 _____ () C:\Users\Michèle\AppData\Roaming\co.txt
2011-06-17 14:00 - 2011-06-17 14:00 - 0018258 _____ () C:\Users\Michèle\AppData\Roaming\gu.txt
2015-11-20 17:06 - 2015-11-20 17:06 - 0009170 _____ () C:\Users\Michèle\AppData\Roaming\nl.txt
2015-02-12 14:13 - 2015-02-12 14:13 - 0009372 _____ () C:\Users\Michèle\AppData\Roaming\sk.txt
2016-08-20 18:25 - 2017-03-07 10:06 - 0000165 _____ () C:\Users\Michèle\AppData\Roaming\sp_data.sys
2011-06-17 14:00 - 2011-06-17 14:00 - 0011386 _____ () C:\Users\Michèle\AppData\Roaming\ug.txt
2017-03-02 22:07 - 2017-03-02 22:07 - 0047792 _____ () C:\ProgramData\agent.1488488863.bdinstall.bin
2017-03-02 22:28 - 2017-03-02 22:28 - 0392894 _____ () C:\ProgramData\cl.1488489292.bdinstall.bin
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-18 19:08
==================== Fin de FRST.txt ============================